Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFCF8/05E4C2D28B0211EC85F2D074C4F9AE02/235743C0772F11ED8D41D287C4F9AE02.roa
File: 235743C0772F11ED8D41D287C4F9AE02.roa (raw, json)
Hash identifier: KicSwmLcJYkBBGvDTNXwtvY9jUmxtatoBoSinSMmq0c=
Subject key identifier: 86:0E:34:32:0F:FB:D5:42:FF:91:72:6C:58:3D:77:F4:C1:93:81:BE
Certificate issuer: /CN=A91CFCF8/serialNumber=7C5E0DDC4F5869747B2A358C9B7C0F31E8D8DD8B
Certificate serial: 0210
Authority key identifier: 7C:5E:0D:DC:4F:58:69:74:7B:2A:35:8C:9B:7C:0F:31:E8:D8:DD:8B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fF4N3E9YaXR7KjWMm3wPMejY3Ys.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CFCF8/05E4C2D28B0211EC85F2D074C4F9AE02/235743C0772F11ED8D41D287C4F9AE02.roa
Signing time: Sat 07 Jan 2023 04:23:19 +0000
ROA not before: Sat 07 Jan 2023 04:23:19 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 139088
IP address blocks: 103.179.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 528 (0x210)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CFCF8/serialNumber=7C5E0DDC4F5869747B2A358C9B7C0F31E8D8DD8B
Validity
Not Before: Jan 7 04:23:19 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63b8f3b7-d2e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e8:96:28:27:2d:f8:fc:87:df:4e:22:3c:28:
43:f9:ab:9d:8d:7c:63:3c:79:66:20:00:7a:7b:fd:
64:8f:fc:7c:ac:be:eb:94:02:08:4e:9f:1f:db:1a:
f5:7e:c5:6f:c0:19:a7:ea:44:6a:b0:73:27:6e:33:
1d:8c:07:3a:b0:8f:c9:7c:fa:4e:55:94:87:b6:ea:
46:04:5c:6e:1c:64:c4:3d:7e:eb:a7:13:2d:a3:1c:
44:49:21:2c:9f:76:7e:e0:af:13:b1:5c:b1:d7:cb:
43:3d:fd:8b:f8:cc:ed:b8:ff:c5:f3:2b:79:6b:bf:
d5:82:0a:12:9b:09:94:c3:93:ec:73:3c:b0:f3:46:
19:ee:62:55:43:c2:f7:fd:1b:49:c8:ad:f3:d9:ad:
7a:61:5f:0f:8b:c7:88:a8:85:bb:45:94:ea:74:12:
0d:01:62:39:6a:e7:6f:b1:0f:08:9a:76:1b:86:c9:
87:43:13:48:bc:c7:3e:4b:c1:0f:e3:ef:33:30:28:
81:69:24:9a:2a:42:eb:f7:d2:52:8c:a9:1d:59:11:
bb:3d:d7:ce:53:2b:61:ce:53:08:dd:33:b3:c6:c0:
f8:ee:48:dc:18:a0:f4:c6:a3:29:2b:ff:87:ca:92:
dc:d6:96:0c:02:ca:0c:9b:89:c8:9d:84:1e:98:79:
51:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0E:34:32:0F:FB:D5:42:FF:91:72:6C:58:3D:77:F4:C1:93:81:BE
X509v3 Authority Key Identifier:
keyid:7C:5E:0D:DC:4F:58:69:74:7B:2A:35:8C:9B:7C:0F:31:E8:D8:DD:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CFCF8/05E4C2D28B0211EC85F2D074C4F9AE02/fF4N3E9YaXR7KjWMm3wPMejY3Ys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fF4N3E9YaXR7KjWMm3wPMejY3Ys.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFCF8/05E4C2D28B0211EC85F2D074C4F9AE02/235743C0772F11ED8D41D287C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.240.0/24
Signature Algorithm: sha256WithRSAEncryption
27:90:e3:b4:17:a9:ed:25:85:6c:05:c6:96:ac:ea:70:39:e5:
1b:1f:db:77:5e:ef:25:e5:d5:3c:14:74:8a:71:d3:10:71:d8:
3d:09:fc:45:3b:85:d8:42:22:a6:9f:63:e7:d9:0d:3d:b9:a0:
46:60:e2:34:83:db:18:44:0b:0e:bb:97:7b:34:93:72:07:7b:
4c:86:74:02:e6:59:b5:19:3e:83:db:14:e6:42:24:a1:d6:ac:
ae:20:0f:e2:0d:42:94:d2:01:18:8d:76:41:fd:63:9e:6a:d5:
27:f3:35:01:f9:a7:01:f0:a9:ab:59:7d:79:30:eb:64:ab:59:
d2:5a:f5:94:24:01:22:29:0c:ff:b0:35:91:92:2e:b2:5a:35:
74:bf:f2:33:3f:7e:6a:af:04:7e:24:18:5d:cf:33:53:1a:94:
cb:e8:25:f7:0f:58:dd:89:63:0c:f7:b3:09:57:60:9b:c4:3e:
11:40:51:74:69:13:56:0c:8e:6c:1e:3e:16:8c:b9:11:ad:9b:
de:e9:6d:80:81:81:ac:c7:ca:bf:7a:ba:8c:cc:4d:10:f2:f0:
a9:d8:04:99:27:00:77:ec:38:41:22:ff:46:1f:6b:e3:49:21:
21:01:d0:11:06:71:40:d3:0d:9b:28:4e:b5:67:b6:0a:cf:15:
73:ba:b5:14
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0ZDRjgxMTAvBgNVBAUTKDdDNUUwRERDNEY1ODY5NzQ3QjJBMzU4QzlCN0MwRjMx
RThEOEREOEIwHhcNMjMwMTA3MDQyMzE5WhcNMjQwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02M2I4ZjNiNy1kMmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyuiWKCct+PyH304iPChD+audjXxjPHlmIAB6e/1kj/x8rL7rlAIITp8f2xr1
fsVvwBmn6kRqsHMnbjMdjAc6sI/JfPpOVZSHtupGBFxuHGTEPX7rpxMtoxxESSEs
n3Z+4K8TsVyx18tDPf2L+MztuP/F8yt5a7/VggoSmwmUw5Psczyw80YZ7mJVQ8L3
/RtJyK3z2a16YV8Pi8eIqIW7RZTqdBINAWI5audvsQ8ImnYbhsmHQxNIvMc+S8EP
4+8zMCiBaSSaKkLr99JSjKkdWRG7PdfOUythzlMI3TOzxsD47kjcGKD0xqMpK/+H
ypLc1pYMAsoMm4nInYQemHlRHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIYONDIP
+9VC/5FybFg9d/TBk4G+MB8GA1UdIwQYMBaAFHxeDdxPWGl0eyo1jJt8DzHo2N2L
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkNGOC8wNUU0QzJEMjhC
MDIxMUVDODVGMkQwNzRDNEY5QUUwMi9mRjROM0U5WWFYUjdLaldNbTN3UE1lalkz
WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2ZGNE4zRTlZYVhSN0tqV01tM3dQTWVqWTNZcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0ZDRjgvMDVFNEMyRDI4QjAyMTFFQzg1RjJEMDc0QzRGOUFFMDIvMjM1NzQzQzA3
NzJGMTFFRDhENDFEMjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABns/AwDQYJKoZIhvcNAQELBQADggEBACeQ47QXqe0lhWwF
xpas6nA55Rsf23de7yXl1TwUdIpx0xBx2D0J/EU7hdhCIqafY+fZDT25oEZg4jSD
2xhECw67l3s0k3IHe0yGdALmWbUZPoPbFOZCJKHWrK4gD+INQpTSARiNdkH9Y55q
1SfzNQH5pwHwqatZfXkw62SrWdJa9ZQkASIpDP+wNZGSLrJaNXS/8jM/fmqvBH4k
GF3PM1MalMvoJfcPWN2JYwz3swlXYJvEPhFAUXRpE1YMjmwePhaMuRGtm97pbYCB
gazHyr96uozMTRDy8KnYBJknAHfsOEEi/0Yfa+NJISEB0BEGcUDTDZsoTrVntgrP
FXO6tRQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:41 2024 by rpki-client on console-fra.rpki-client.org